TechHaraCompression algorithms benchmarkIn the quest for efficient data storage and transfer, compression algorithms play a pivotal role. Today, we’ll benchmark 5 widely-used…Jun 3
Jossef Harush KadouriinCheckmarx ZeroBackdoor Discovered in xz: The Most Advanced Supply Chain Attack Known to DateThe xz project, a tool used by many Linux distributions for compressing files, was compromised by a malicious actor who gradually took over…Mar 313
Kevin BeaumontinDoublePulsarInside the failed attempt to backdoor SSH globally — that got caught by chanceWhy the threat actor rushed deployment.Mar 3111Mar 3111
Nick FelkerIs open-source software ethical?I had this idea mulling in the back of my head for a few weeks but I didn’t know exactly how I wanted to write about it. Then over the…Apr 31Apr 31
TechHaraCompression algorithms benchmarkIn the quest for efficient data storage and transfer, compression algorithms play a pivotal role. Today, we’ll benchmark 5 widely-used…Jun 3
Jossef Harush KadouriinCheckmarx ZeroBackdoor Discovered in xz: The Most Advanced Supply Chain Attack Known to DateThe xz project, a tool used by many Linux distributions for compressing files, was compromised by a malicious actor who gradually took over…Mar 313
Kevin BeaumontinDoublePulsarInside the failed attempt to backdoor SSH globally — that got caught by chanceWhy the threat actor rushed deployment.Mar 3111
Nick FelkerIs open-source software ethical?I had this idea mulling in the back of my head for a few weeks but I didn’t know exactly how I wanted to write about it. Then over the…Apr 31
Interlynkxz backdoor: 5 LessonsCVE-2024–3094 — also known as xz-backdoor or xz-trojan — is the most concerning software supply chain attack to date.Apr 14
Trevor Kutto HacksinKafkaesque SecurityXZ Utils Unmasked: Exposing Social Engineering Tactics and the Infiltration of a Sophisticated…The intricacies of the backdoor within XZ Utilities are notably complex. Notably, the backdoor eludes detection within the XZ GitHub…Apr 3
aminIT Security In Plain EnglishMy Experience with CVE-2024–3094 and the xz vulnerability checker & fixer scriptsMost of you are probably already aware of the recent CVE-2024–3094. If not, here’s a brief rundown: it’s a significant vulnerability that’s…Apr 3